HTTP: Free Download Manager .torrent File Parsing Multiple Buffer Overflows
This signature detects attempts to exploit a known vulnerability in the Torrent file format. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the client.
Extended Description
Multiple buffer overflows in the torrent parsing implementation in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allow remote attackers to execute arbitrary code via (1) a long file name within a torrent file, (2) a long tracker URL in a torrent file, or (3) a long comment in a torrent file.
Affected Products
Free_download_manager free_download_manager
Short Name
HTTP:STC:BT:FDM-TORRENT-BOF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
.torrent Buffer CVE-2009-0184 Download File Free Manager Multiple Overflows Parsing bid:33555
Release Date
10/01/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3659
False Positive
Unknown
Vendors
Free_download_manager
CVSS Score
9.3